Subscribe to our Threatpost Today newsletter

Join thousands of people who receive the latest breaking cybersecurity news every day.

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

*

*

I agree to my personal data being stored and used to receive the newsletter

*

I agree to accept information and occasional commercial offers from Threatpost partners

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Root Exploit in Devices with Samsung’s Exynos Processors

An XDA Developers forum member operating under the handle alephzain has created an exploit that obtains root privileges and enables malicious application installation on the many Samsung devices that contain Exynos 4210 and 4412 processors.

An XDA Developers forum member operating under the handle alephzain has created an exploit that obtains root privileges and enables malicious application installation on the many Samsung devices that contain Exynos 4210 and 4412 processors.

Alephzain’s exploit can root any Exynos 4210 or 4412 device without requiring an Odin flash that most similar root exploits require, according to XDA’s Joseph Hindy.

In his explanation of the bug, Alephzain explains that the vulnerability could expose devices to malicious applications in the Play Store and allow for RAM dump, kernel code injection, and other possible problems.

Another XDA member, using the alias Chainfire, confirmed the vulnerability’s efficacy by creating an application called ExynosAbuse APK that uses the exploit to root vulnerable devices. The latest version of the application uses its newly gained root privileges and offers users the ability to disable the vulnerability at boot. XDA warns that choosing to do so may negatively impact camera applications on certain devices.

Authors

Threatpost

InfoSec Insider Post

InfoSec Insider content is written by a trusted community of Threatpost cybersecurity subject matter experts. Each contribution has a goal of bringing a unique voice to important cybersecurity topics. Content strives to be of the highest quality, objective and non-commercial.

Sponsored

Sponsored Post

Sponsored Content is paid for by an advertiser. Sponsored content is written and edited by members of our sponsor community. This content creates an opportunity for a sponsor to provide insight and commentary from their point-of-view directly to the Threatpost audience. The Threatpost editorial team does not participate in the writing or editing of Sponsored Content.